anal
Aug 17 2003, 10:30 AM
Hi
is there any fast and reliable scanner for the rpc/dcom-vul that is actually in the news?
I tried dcom_scanz but this one is really slow.
There are some good ones for the windows-cl but i need one for linux.
shaun2k2
Aug 17 2003, 05:41 PM
Why not try writing your own? By the looks of it, writing a scanner for the vulnerability is pretty easy providing that you know a programming language, and the sockets library for the language. You can just borrow the malformed requests from another dcom/rpc vulnerability tester, and implement it into your own code.
Thank you for your time.
Shaun.
andariel
Aug 18 2003, 08:29 AM
I am new to Linux, I just have installed my mandrake for 2 days.
I think if you update your Nessus, it will support that vuln as well. Or you may find a plugin for DCOM for Nessus.
anal
Aug 23 2003, 12:02 AM
writing my own is beyond my skills
nessus is an option, but i didn't manage to start it with this msrpc-plugin only.
scanning with all plugins is really time-consuming and not what i want.
maybe some1 can help me here.
andariel
Aug 23 2003, 11:04 AM
Can't you use WINE to run th eEye one on Linux ?
maZer`-
Aug 25 2003, 04:04 AM
Use wine to run the scanner!
Really fast method to scan dcom is to use scan1000,
Usage:
scan1000.exe -p 135 [ip] [ip]
Copy the results in a textfile!
scanms.exe file=textfile
Have Phun
MxMx
Aug 27 2003, 06:13 PM
| QUOTE (maZer`- @ Aug 25 2003, 04:04 AM) |
Use wine to run the scanner!
Really fast method to scan dcom is to use scan1000,
Usage:
scan1000.exe -p 135 [ip] [ip]
Copy the results in a textfile!
scanms.exe file=textfile
Have Phun |
mhh i think scanms cant scan ips from a .txt file
JFCa
Aug 29 2003, 09:05 AM
Perhaps...
cat textfile | scanms
anal
Aug 29 2003, 03:15 PM
wine is also no option ... my linux-sys is a p90 with a lame VGA-adapter
the point behind my question is that i try to write a bash-script that scans random ip-adresses and tries to exploit them
so all i need is a linux program that checks if a host is vul or not
x80
Sep 25 2003, 01:05 PM
example: nmap -sT -p 135 -G scan.txt 192.168.168.1/24
scans ips 192.168.168.1 - 192.168.168.255 and logs to the file scan.txt which can be found in your home dir
you can use /8 or /16 or /24 depending on what your network is running subnet wise
mant
Jan 2 2004, 10:11 PM
Hehehhee..
http://www.k-otik.com/exploits/09.11.dcom2_scanner.c.phpThar ya go.. it's a bit skiddy, but it'll do the job if you're jsut trying to locate vulnerable machines. eEye has a great one that runs on Windows if you're into that.
predx
Jan 3 2004, 02:12 PM
yeah i seen one on packetstorm but it might be the one listed above.
va23boam
Apr 16 2005, 09:13 AM
does anyone no of a ntpass or ipc scaner that runs under linux fedora core 3?
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
